Recon For Bug Bounty, Penetration Testers & Ethical Hackers

person icon Vivek Pandit

Buy Now

Recon For Bug Bounty, Penetration Testers & Ethical Hackers

Name: Recon For Bug Bounty, Penetration Testers &amp; Ethical Hackers
Price: 9.99 USD
Author: Vivek Pandit

Maximize your bug bounty hunting with expert-led recon course. Info gathering, tools & techniques covered.

updated on icon Updated on Nov, 2023

language icon Language - English

person icon Vivek Pandit

architecture icon IT & Software,Network & Security,Bug Bounty

Lectures -97

Resources -12

Duration -9 hours

Add to Cart Buy Now

30-days Money-Back Guarantee

Training 5 or more people ?

Get your team access to 8,500+ top Tutorials Point courses anytime, anywhere.

Course Description

This course is fully made for website reconnaissance for bug bounty hunters, penetration testers & ethical hackers. This is a intermediate level course all the topics are discussed here regarding recon on websites.

Some of the topics are what is reconnaissance, what is recon , recon for bug bounty hunters and penetration testers, Subdomain enumeration, URL enumeration, parameter bruteforcing, Creating your own recon tools and many more...

This course is fully focused on website recon and vulnerability assessment.

There will be full methodology of website reconnaissance, bug bounty hunting, penetration testing. The videos are divided into small sections for the students to learn.

All the resources are provided in the resource section including links, pdf, payloads that are used in course.

Course Curriculum :

Introduction
1. Introduction to recon
Subdomain enumeration from tools
1. Subdomain enumeration #1
2. Subdomain enumeration #2
3. Subdomain enumeration #3
4. Subdomain enumeration #4
5. Subdomain bruteforcing
6. Filtering unique domains
7. Subdomain generator
Subdomain enumeration from websites
1. Subdomain enumeration from website #1
2. Subdomain enumeration from website #2
3. Subdomain enumeration from website #3
4. Subdomain enumeration from website #4
Filtering live domains
1. Filtering live domains
URL extraction from the internet
1. URL extraction from the internet #1
2. URL extraction from the internet #2
Finding parameters
1. Finding parameters
2. Parameter bruteforcer
Finding URL from past
1. URL from past
Sorting urls
1. Sorting url for vulnerabilities
Automation for replacing parameters with Payloads
1. Automation for replacing parameters with Payloads
Footprinting websites ( Website recon )
1. Whatweb recon
2. Netcraft
3. Security headers
4. Dnsdumpmaster
5. Whois recon
6. Mxtoolbox
7. OSINT
8. Maltego
Browser addons for recon
1. wappalyzer
2. retire.js
3. shodan
4. Knoxx
5. Hack-tools addon
WAF idetification
1. WAF identification
Subdomain takeover
1. HostileSubBruteForcer
2. Sub404
3. Subjack
Fuzzing (Content-Discovery)
1. dirb
2. ffuf
Port scanning
1. Introduction to nmap
2. Port specification in nmap
3. Service and version detection from nmap
4. Firewall bypass technique
Fast port scanning
1. nabbu
2. masscan
Visual recon
1. Gowitness
Google dorking
1. Introduction to google dorking
2. Understnding the URL structure
3. Syntax of google dorking
4. Google dorking operators
5. Google search operators ( Part - 1 )
6. Google search operators ( Part - 2 )
Google dorking practical
1. Introduction to practical google dorking
2. How to find directory listing vulnerabilities ?
3. How to dork for wordpress plugins and thems ?
4. How to dork for web servers versions ?
5. How to dork for application generated system reports ?
6. Dorking for SQLi
7. Reading materials for google dorking
Tips for advance google dorking
1. Tip #1
2. Tip #2
3. Tip #3
Shodan dorking
1. Intro to shodan dorking
2. Shodan web interface
3. Shodan search filters
Shodan dorking practical
1. Finding server
2. Finding fIles and directories
3. Finding operating systems
4. Finding compromised devices and websites
Shodan command line
1. Introduction to shodan command line
2. Practical shodan in command line
Github dorking
1. Introduction to github dorking
2. Github dorking practical
Vulnerability scanning
1. Nuclei
2. Wp-Scan
3. Scanning with burpsuite
Metasploit for recon
1. DNS recon using metasploit
2. Sub-domain enumeration using metasploit
3. E-mail address finding
Port scanning using metasploit
1. TCP SYN port scan using metasploit
2. SSH version detection
3. FTP version enumeration
4. MySQL version detection
5. HTTP enumeration
Payloads for bug bounty hunters
1. Payloads for bug hunters and enetration testers
How to create tools for recon ?
1. SSRF finder tool
2. XSS finding too
3. URL extractor from javascript files
4. Full website recon tool
Bonus
1. Bonus video

Thank you :)

Vivek Pandi

Who his course is for:

Bug bounty hunters, penetration testers, ethical hackers and etc.

This course is fully focused on website recon and vulnerability assessment.

There will be full methodology of website reconnaissance, bug bounty hunting, penetration testing. The videos are divided into small sections for the students to learn.

All the resources are provided in the resource section including links, pdf, payloads that are used in course.

Course Curriculum :

Introduction
1. Introduction to recon
Subdomain enumeration from tools
1. Subdomain enumeration #1
2. Subdomain enumeration #2
3. Subdomain enumeration #3
4. Subdomain enumeration #4
5. Subdomain bruteforcing
6. Filtering unique domains
7. Subdomain generator
Subdomain enumeration from websites
1. Subdomain enumeration from website #1
2. Subdomain enumeration from website #2
3. Subdomain enumeration from website #3
4. Subdomain enumeration from website #4
Filtering live domains
1. Filtering live domains
URL extraction from the internet
1. URL extraction from the internet #1
2. URL extraction from the internet #2
Finding parameters
1. Finding parameters
2. Parameter bruteforcer
Finding URL from past
1. URL from past
Sorting urls
1. Sorting url for vulnerabilities
Automation for replacing parameters with Payloads
1. Automation for replacing parameters with Payloads
Footprinting websites ( Website recon )
1. Whatweb recon
2. Netcraft
3. Security headers
4. Dnsdumpmaster
5. Whois recon
6. Mxtoolbox
7. OSINT
8. Maltego
Browser addons for recon
1. wappalyzer
2. retire.js
3. shodan
4. Knoxx
5. Hack-tools addon
WAF idetification
1. WAF identification
Subdomain takeover
1. HostileSubBruteForcer
2. Sub404
3. Subjack
Fuzzing (Content-Discovery)
1. dirb
2. ffuf
Port scanning
1. Introduction to nmap
2. Port specification in nmap
3. Service and version detection from nmap
4. Firewall bypass technique
Fast port scanning
1. nabbu
2. masscan
Visual recon
1. Gowitness
Google dorking
1. Introduction to google dorking
2. Understnding the URL structure
3. Syntax of google dorking
4. Google dorking operators
5. Google search operators ( Part - 1 )
6. Google search operators ( Part - 2 )
Google dorking practical
1. Introduction to practical google dorking
2. How to find directory listing vulnerabilities ?
3. How to dork for wordpress plugins and thems ?
4. How to dork for web servers versions ?
5. How to dork for application generated system reports ?
6. Dorking for SQLi
7. Reading materials for google dorking
Tips for advance google dorking
1. Tip #1
2. Tip #2
3. Tip #3
Shodan dorking
1. Intro to shodan dorking
2. Shodan web interface
3. Shodan search filters
Shodan dorking practical
1. Finding server
2. Finding fIles and directories
3. Finding operating systems
4. Finding compromised devices and websites
Shodan command line
1. Introduction to shodan command line
2. Practical shodan in command line
Github dorking
1. Introduction to github dorking
2. Github dorking practical
Vulnerability scanning
1. Nuclei
2. Wp-Scan
3. Scanning with burpsuite
Metasploit for recon
1. DNS recon using metasploit
2. Sub-domain enumeration using metasploit
3. E-mail address finding
Port scanning using metasploit
1. TCP SYN port scan using metasploit
2. SSH version detection
3. FTP version enumeration
4. MySQL version detection
5. HTTP enumeration
Payloads for bug bounty hunters
1. Payloads for bug hunters and enetration testers
How to create tools for recon ?
1. SSRF finder tool
2. XSS finding too
3. URL extractor from javascript files
4. Full website recon tool
Bonus
1. Bonus video

Thank you :)

Vivek Pandi

Who this course is for:

Bug bounty hunters, penetration testers, ethical hackers and etc.

Goals

What will you learn in this course:

Web Reconnaissance: Unlocking the Mysteries of Websites for Competitive Advantage
Beyond the Main Domain: Expert Tips for Discovering Subdomains
URL Mining: Advanced Techniques for Gathering Valuable Data and Insights
Parameter Discovery: Advanced Techniques for Uncovering Valuable Data
Information Mining: How to Unleash the Power of Data Through Smart Gathering
Unlocking the Power of Information: Safely Gathering Sensitive Data from Websites
Uncover the Hidden Truth: Mastering Deep Recon on Websites

Prerequisites

What are the prerequisites for this course?

Basic knowledge of linux is required
Basic knowledge of vulnerabilities

Recon For Bug Bounty, Penetration Testers & Ethical Hackers

Curriculum

Check out the detailed breakdown of what’s inside the course

Introduction
1 Lectures

Introduction 05:19 05:19

Subdomain enumeration from tools
6 Lectures

Subdomain enumeration from websites
5 Lectures

Filtering live domains
1 Lectures

URL extraction from the internet
2 Lectures

Finding parameters
2 Lectures

Finding URL from past
1 Lectures

Sorting urls
1 Lectures

Automation for replacing parameters with Payloads
1 Lectures

Footprinting websites (websites recon)
9 Lectures

Browser addons for recon
6 Lectures

WAF identification
1 Lectures

Subdomain takeover
3 Lectures

Fuzzing(Content-Discovery)
2 Lectures

Recon with port scanning
5 Lectures

Fast port scanning recon
2 Lectures

Visual recon
1 Lectures

Google dorking
8 Lectures

Google dorking practical
7 Lectures

Tips for advance google dorking
3 Lectures

Shodan dorking
4 Lectures

Shodan dorking practicals
4 Lectures

Shodan command line
2 Lectures

Github dorking
3 Lectures

Vulnerability scanning
3 Lectures

Metasploit for recon
3 Lectures

Port scanning using metasploit
5 Lectures

Payloads
1 Lectures

How to create tools for recon?
4 Lectures

Bonus
1 Lectures

Instructor Details

Vivek Pandit

That's great to hear that Vivek Pandit is a successful ethical hacker who is providing his services to both government and private sectors in India. It's also impressive that he holds certifications like OSCP, CEH, and CISSP which are highly respected in the information security industry.

Furthermore, training more than 25000 students worldwide is a significant achievement and demonstrates his dedication to sharing his knowledge and expertise with others. It's important to have skilled professionals in the field of ethical hacking to help protect organizations from cyber threats and vulnerabilities.

Overall, it's encouraging to see individuals like Vivek Pandit making a positive impact in the cybersecurity industry, and I wish him continued success in his career.

For Business and Partnerships: parrotngrok143@gmail.com

Course Certificate

User your certification to make a career change or to advance in your current career. Salaries are among the highest in the world.